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METHOD AND DEVICE FOR , SECURING ACCESS TO A SERVICE IN A 
TFT /ttrOMMTTNICATION NETWORK 



The invention relates to a method for accessing a service in a telecommunication 



lvqttiojireiates io^a i 

A 5 networksbrk a private network, an intelligent network or a mobile radio «etwedf 
ft ^Koceedisg from an arbitrary communication terminal device^wh erein - it i s- n e eess a ry to 

A authenticate oneself by meanp - of entering digit sequences in o 3 rder to receive access to 

. '* inodttitiOn , , . . 

z ft a desired service.^esides, the invention relates to a device in a telecommunication 

H network^ which makes it possible to carry out a secure authentication of a user in the 

=1 10 case of a service call. 

3 A- Cfestription of -Hvc KelocW Art 

4 w^Given an intelligent network IN, A architecture is concerned that makes it possible, in 
3 * a communication network, to offer sWces to users of this network. These what are 
Jj fc- .pefeffed-te-as- value-added services give network operates the opportunity to 

¥ 15 differentiate themselves from competitors and to develop additional income sources. 

In order to be able to offer value-added services, the network operator needs at least 
one central node in his network (service control point), whic^as4Ee bits of ^ ^ 
information -stefed-that are necessary for pwpmes-ef carrying out the services goring 
jy 2 0 the service programs, forwarding to responsible network nodes,etc). This central 
node is also referred to as implementing entity. 

Such ■ - 

|L The users irua communication network can *hefeby utilize interesting new services. „ 

k ^ ^Ifina service n<AihiC/h we. 

^ One of the better known services is the-wbaHs^fefre^te-as credit card ^alling'/ The 

/V 25 caller is iiefebr charged via his credit card with the fees for actuated calls. Apart form 
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Such an access protection is also imaginable regarding other services, for example^for 
users in a mobile network, a private network or a private virtual network. ^ 

A In all^hese cases, the authenticating digit code is entered via the keyboard of the 
5 terminal device and is transparently (i.e.^in plaintext) transmitted via the lines and 
switching nodes of the communication'network. 

impropriate^ acquire 

f\ There are two possibilities to A spyno«t these access codes: , t i * « X 

A' a) by spying our the PIN, be it observing the user with respect to the input via 

A A of s\ ^ 

^10 the keyboard of his terminal device^&©-by video monitoring* 

b) by tapping the PIN with respect to the transmission between terminal 

device and the performing entity. 

f± A SUMAAftR>/0Frri£lNv/ENTIOri 

The invention is based on the object of proposing a possibility as to how the access to 
15 services in a telecommunication network can be fashioned more secure. 

IMS P^V^This object is achieved by means>9^a method according to patent claim 1. 

The utilized method describes the following course of action: 

An Qr\ 

/V- 2 0 4ee unambiguous digit sequence for securing the access is encoded subsequent to A tho - 
,x * lA>OU * 

input b^aeans-of an encoding function or a mathematical one-way function, which are 

known to someone skilled in the art. x 

A A one-way function is a mathematical function f(x) = y, whereby y is simple to 

calculate;^4o o v e rsa, the determination of x from y, on the other hand, is extremely 

2 5 complex and not necessarily unambiguous. 

A further parameter is co-encoded, which changes with each new input of the digit 

sequence. Therefore, each new encoding process supplies a new result. 



3 

reSuft 

PC Together with the variable parameter, this^is subsequently coded directly per protocol 
or is coded into a digit sequence's sent in multi-frequency signalin^potentially via 
switching nodesjup to the central entity. ^ 
The transmission ensues in the same way as the previous process of the 
5 authentication. 



Then, the central entity evaluates the transmitted digit sequence in that a result is also 
calculated from the known one-way fiinctioriyihe expected PIN and the co-supplied 
fa parameters and is compared ^in tao [bio] received value. 

10 

The realization of this authentication method is comparatively simple. A sufficient 
number of encoding methods are known to someone skilled in the art. The 
implementation of the method is only necessary on the side of the user and at the 
central entity; the lmplementation^atiay- is low. An^df©ady-pf©s©fit data bank can be 
/^15 simply expanded by a field for storing the already-received access codes. 

The advantage of the described method clearly lies in the protection of the user. The 
d^PerdiWO -fKeM oJso required enf™ of 

f\ -entfey is not greater for the user than in previous methods, since an access code ^ 

A A A 

/T previously had to be ontorod -as-weifc However, an unauthorized user is efficiently 

Misuses 

2 0 prevented from calling at the expense of others. Thi s misuse is hithert e possible, since 
it is not a precondition that the user also has the credit card when he enters the credit 
ft card number, for example. Thus, the access could be gained in a simple way by*saeft»s 
A -©f simply observing the entered number including PIN. 

Bat ui \\Y\ -the. mvwvhv o method 

/Y ^b^hts-easerthe lacking knowledge about the utilized encoding method additionally 
25 prevents -frenrthe unauthorized usage. 



The access code is fashioned such that it is secure against tapping; one or more 
variable parameters are added, such as a specification about the point in time of the 



/V request^T licrcby , a tapp in g t ria l in the network (for example on the access line) 

becomes useless, since a repeatedly used access code is rejected in the first place. 

This - ubjeU is achieved by moan s of a dovioo according to patent claim - 9. 

5 

^ A device for purposes of encoding the entered PIN is tte^p^ utilized. This device 

/L requires an input device (keyboard) similar to the one -ef the communication terminal 

tn A device. The device converts the entered digit sequence by iaeans-of the mathematical 

m A 

l\ I one-way function, together with a variable parameter. Together with the second 

y 1 0 parameter, the result of the calculation is subsequently translated into multi-frequency 

iy signaling methods and is transmitted to the terminal device. 

The transmission up to the central entity ensues from there. 

y The central entity carries out an authentication with the received access code. 

J "the incentive 

O /V 15 fa^idrdon^to the previously cited advantages, a crMcal^a^vantage^t hi s co ttr sc -o f 
*- s (\r ^^te^s the^poM^ility of being able to alr eady enter ^^mp ^ oi^a ^ ngci ^ )criod of- 

| fV/S i{ ^me before the actual usage. Tlui&^t least the 'spying-out' by means of observing the 

input of the number can be effectively pt^vented. 

I (Vi^ A \ Advantageous embodiments and devel^nents are provided in the subclaims. 

The inventive course of action is particularly advantageous with respect to specific 
/T -weffes of telecommunication networks. t First of all, the architecture of the intelligent 

n network is to be ^amod, wherein , for example, the service 'credit card calling' has 

'ft 25 already been implemented.. The infrastructure required for the method is already 
f\ presenj^ Apart from the private networks, which require a mechanism for accesses 

from^utside, there is also the VPN - the 'Virtual Private Network', which is realized 
At in IN technology as well. Finally, the method is alsa;i^ ^^)le in communication 
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networks for mobile radio telephone service; -h^re, the user must authenticate himself 
for a device as well. 



A plurality of possibilities are imaginable for the variable parameters. In the most 
simple case, a random number is created each time; corresponding generator functions 
for random numbers are known to someone skilled in the art. 

Another possibility is a time specification, for example, a dividing in a time-slot pattern 
o^rbitrary nature ^n this case , the centj^l^e^t^^on ono hand, can check whether the 
received access code is a current value, further , the additional transmission of the 
variable parameter is potentially not necessary when the transmitter and the receiver 
are synehronizofl otherwise in terms of time. 

Another possibility is the generation of a mathematical progression with an initial 
number n, whereby the sequence number n2^ca^^ult from its precursor number nl in 
different ways, such as summing -up- a fixed v a lise. 

Numerous methods and functions are known to someone skilled in the art regarding 
the type of encoding. In particular, the ITU recommendation X.509 and the RFC 
1 93^-epresent different complex and secure authentication and encoding methods. 

The ITU recommendation X.509 particulary represents two methods. 

The first and more simple method only uses an encoding process. The one-way 

function f is applied to one or more variable .parameters and the PIN, possibly 

expanded by a string that is known to the MFV transmitter and the telecommunication 

A 

service. The result from f (parameter 1, [parameter2, ...], PIN) is converted into a digit 

string, which is then transmitted by mea^i of the MFV transmitter. 

A 

It is more complex to realize a two-step encoding aad-tt also requires more computing 

power with respect to the transmitter and receiver; however, 4t also offers a 1 

A 

significantly higher protection. 



iA-first encoding step tfeeieby ensues in the same way as the above cited, single-step 

/* occur 

method. Subsequently, a second pass^tvith a second mathematical algorithm f (which 

can be identical with the first function f); the result calculates as follows: 

f (parameter xl ^parameter x2, ..], f (parameter yl [^parameter y2], PIN), PIN. 

A generalized encoding process requires the multiple application of one algorithm or 
of different algorithms, respectively with the input parameters PIN and additional 
variable parameters. 



When the result of the encodin^is^npt a numeric digit sequence, or when the result 
cannot be transmitted without^crVT fste-} tones (as it is the case with respect to ISDN), 
the result must be translated in such a digit sequence prior to the transmission. 



The authentication method checks the transmitted digit code^I t is thereby detected 

defer rn/n^GL 

whether the user is authorized to access a service. It can be^additionally detected 
whether the digit code that is authorized to access a service is misused. 



The authentication can proceed as follows: 

— The central entity checks whether the sent access code has already been 
received once in a fixed time interval^ <*ncl if so, 

When-irhts4s th o-oas c the authentication is discontinued as unsuccessful. 

— E fl - the - other cas e, the central entity calculates the access code to be 
expected by -myalls of the same one-way function and the second parameter 
contained in the received access code and compares the result to the 
received one. The authentication is successful when the calculated and 
received code match. The user is allowed to access the desired service. 



It can be advantageous to integrate the encoding device into the communication 
terminal device^FU^^the user does not have a second device that can get lost. 



Transmission errors of the encoding device to the terminal device are also avoided. A 
generator for MFV tones, which is already present in the terminal device, can be 
utilized and potentially modified. 

5 The application possibilities of this method in a telecommunication network 

(particularly an intelligent network, a private network or a mobile network) are 
a a - 

fi< versatile. Particularly *he fee aspect represents a critical factor not only for the service 

provider Jbut also for the network user. 

f\ j n - p a rftcula fr4ke credit card telephony is associated with an extremely high riskx-? 

, A especial . A 
fa 1 0 Partfctriariy- since the extent of the damage does not become obvious before the next 

invoice, since a loss of the card is not noticed in the case of misuse. 

Both sides can achieve an extremely high advantage with a comparatively small 



A 

... n 

is ^The invention is subsequently explained on the basis of exemplary embodiments. 

ZL Shown aro - . , . , , 

fi( Figure 1 ^the generation, transmission and authentication of a one-time-access code 



in an intelligent network, 
Figure 2 ^the generation of the one-time-access code according to ITU X^509, 



2 0 single-steo method, and 

is <k block. di<\t^fCi((\ shouo lAfl 
n Figure 3 ^the generation of the one-time-access code according toITU X.509, two- 
step method. 

& VESCAlPTlQN OF m FtErQ&Eb EWBooiMi, A/H service control point 

Figure 1 shows the path of an access key (PIN) from a user up to a central entity 

2 5 (SCP) in an intelligent network. 

Subsequent to the input in a device for purposes of encoding (MFV), the PIN is 

transmitted by means of dial tones to the terminal device (KE) and from there is 

A transmitted into the communication network to the central entity (SCP). Ei r iuute y^ 

fMS A^V -gwfeehay^^ the encod e d access code ia currently 



|N S> ' 4£^sparen%-transmittecL-^^ h e r e by b e sp i ed out by mearre-of 

. <tf #s p^rfv ^^^^^^ 

A -tapping The central entity (SCP) checks the access code on the basis of already 

known data, for example, from a data bank (DB), and the co-supplied data from the 
fv supplied digit string. After th^access code to . be expoot o d h^^e^^lc^at|d^^ 

/V 5 compared to the received one, an acknowledgment message is made [ sic]- whether or 

fir < * 1 h^os wkemzr * 



not the transmitted access code is correct and the user is allowed access •'tis q. rcGult 

A 



Figure 2 and Figure 3 schematically show the generation of an access code that is to be 
1 0 transmitted via the network to the central entity. A symmetrical key is thereby - 

required (PIN), which is known to the user and the central entity, which carries out an 
authentication. The PIN itself is not transmitted in a decodecLmanner. 

a mou be c^e^ccdi^d 

'•V In addition, two variable parameters o re -b o encoded here - a time specification (time, 

A 

time') and a random number. These components change with each authentication 
15 process and thus prevent a detected one-time-access code from being used again. 
When these components cannot be automatically derived with respect to the central 
entity, they must be co-transmitted during the authentication. 

Additional data, such as arbitrary text, can also be utilized for the formation of the 
one-time-access code. These data are either known to both sides or are derivable or 
2 0 are additionally transmitted. 
/v_ An encoded access code (rpPIN) is generated by -mea ns of the one-way function f (and 
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Abbreviation list 



15 f, f 


mathematical functions 


IN 


intelligent network 


ITU 


international telecommunication union 


KE 


communication terminal device 


MFV 


multi-frequency method 


20 PIN 


personal identification number 


rpPIN 


replayprotected [sic]PIN 


SCP 


service control point 


SSP 


service switching point 



